There Security Update 2010-001,
which can be downloaded and installed via Software Update preferences, or from Apple Downloads
Size: 22.4MB
CoreAudio CVE-ID: CVE-2010-0036Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.2, Mac OS X Server v10.6.2
Impact: Playing a maliciously crafted mp4 audio file may lead to an unexpected application termination or arbitrary code execution
Description: A buffer overflow exists in the handling of mp4 audio files. Playing a maliciously crafted mp4 audio file may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved bounds checking. Credit to Tobias Klein of trapkit.de for reporting this issue.
CUPS CVE-ID: CVE-2009-3553Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.2, Mac OS X Server v10.6.2
Impact: A remote attacker may cause an unexpected application termination of cupsd
Description: A use-after-free issue exists in cupsd. By issuing a maliciously crafted get-printer-jobs request, an attacker may cause a remote denial of service. This is mitigated through the automatic restart of cupsd after its termination. This issue is addressed through improved connection use tracking.
Flash Player plug-in CVE-ID: CVE-2009-3794, CVE-2009-3796, CVE-2009-3797, CVE-2009-3798, CVE-2009-3799, CVE-2009-3800, CVE-2009-3951Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.2, Mac OS X Server v10.6.2
Impact: Multiple vulnerabilities in Adobe Flash Player plug-in
Description: Multiple issues exist in the Adobe Flash Player plug-in, the most serious of which may lead to arbitrary code execution when viewing a maliciously crafted web site. The issues are addressed by updating the Flash Player plug-in to version 10.0.42. Further information is available via the Adobe web site at http://www.adobe.com/support/security/bulletins/apsb09-19.html Credit to an anonymous researcher and Damian Put working with TippingPoints Zero Day Initiative, Bing Liu of Fortinet’s FortiGuard Global Security Research Team, Will Dormann of CERT, Manuel Caballero and Microsoft Vulnerability Research (MSVR).
ImageIO CVE-ID: CVE-2009-2285Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8
Impact: Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution
Description: A buffer underflow exists in ImageIO’s handling of TIFF images. Viewing a maliciously crafted TIFF image may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved bounds checking. For Mac OS X v10.6 systems, this issue is addressed in Mac OS X v10.6.2.
Image RAW CVE-ID: CVE-2010-0037Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.2, Mac OS X Server v10.6.2
Impact: Viewing a maliciously crafted DNG image may lead to an unexpected application termination or arbitrary code execution
Description: A buffer overflow exists in Image RAW’s handling of DNG images. Viewing a maliciously crafted DNG image may lead to an unexpected application termination or arbitrary code execution. This issue is addressed through improved bounds checking. Credit to Jason Carr of Carnegie Mellon University Computing Services for reporting this issue.
OpenSSL CVE-ID: CVE-2009-3555Available for: Mac OS X v10.5.8, Mac OS X Server v10.5.8, Mac OS X v10.6.2, Mac OS X Server v10.6.2
Impact: An attacker with a privileged network position may capture data or change the operations performed in sessions protected by SSL
Description: A man-in-the-middle vulnerability exists in the SSL and TLS protocols. Further information is available at http://www.phonefactor.com/sslgap A change to the renegotiation protocol is underway within the IETF. This update disables renegotiation in OpenSSL as a preventive security measure. The issue does not affect services using Secure Transport as it does not support renegotiation. Credit to Steve Dispensa and Marsh Ray of PhoneFactor, Inc. for reporting this issue.
Use the Tab key in user-created keyboard shortcuts in Snow Leopard. In OS X 10.5, pressing the Tab key while creating keyboard shortcuts (in the Keyboard Shortcuts tab of the Keyboard & Mouse System Preferences panel) didn’t work; the system would just beep and not accept the Tab key.
In Snow Leopard you can now use the Tab key in any combination with the Shift, Control, Command, and Option keys. For example, you could change the Exposé All Windows activation keystroke to Option-Tab, which might make sense if you’re used to using Command-Tab to switch applications and want to have a similarly-assigned shortcut for Exposé.
Open the Keyboard Shortcuts tab of the Keyboard System Preferences panel
Select the Exposé & Spaces entry in the left-hand column
Click on the All Windows entry below Exposé in the right-hand column.
Double-click on the right-hand side of that entry
And just press Option-Tab
and you’re done.
You can now use the Tab key in your user-defined shortcuts, which opens up a number of additional keyboard combinations.
You can reveal the location of a recently-used item by holding down the Command key while looking at the Apple menu’s Recent Items menu. With the Command key held down, the wording of the menu items (for Applications and Documents) changes from some item to Show “some item” in Finder.
source: osxdaily
DNS request are usually cache, that’s good as it speeds up the lookups within the same host but sometimes we will want to clear the cache so it don’t hold the values that are no longer valid.
In Leopard (Mac OSX 10.5) or Snow Leopard (10.6)
To clear DNS cache in Leopard, just type this in your Terminal and hit enter.
dscacheutil -flushcache
To Clear DNS cache in Mac OS X Tiger
Use the following command:
lookupd -flushcache
What is DNS?
The Domain Name System (DNS) is a naming system for computers, and anything else on the Internet. When you type a website’s name into your browser address bar, the DNS gives you the IP co-ordinates to find the server.
If you are a web designer or do any work matching colors with photos, you are in luck. Mac OS X comes with a cool little program to help you get the digital value of any pixel on the screen. It’s called Digital Color Meter.
Here is how to do it: Step 1: From the ‘Finder’ menu, choose ‘GO->Utilities’ or click Shift + Command + U
Step 2: Next, open the app, ‘Digital Color Meter’
Now, you can change the aperture size to smaller (left) or larger (right). Also, you can use the drop down menu to choose what format you want it represented in. For HTML coding, use RGB As Hex Value, 8-bit.
To copy the displayed color value to the clipboard, hover the mouse cursor over the color you want to measure and press Shift+Command+C. Your needs may be different, and it gives you several options to choose from.
One of the great features in Adobe Acrobat Pro is the ability to annotate (comment, markup, circle, highlight) PDF documents and images like JPEGs, PNGs, etc. Although, there are many other features (like creating forms) in Acrobat that are useful for PDFs, it’s not really fair to compare it to Preview. Nonetheless, for those who don’t have Acrobat Pro or don’t want to buy it, Preview has become quite powerful especially with the new Annotate toolbar added in Snow Leopard.
Open up a PDF or IMAGE on your Mac with Preview.
Click on the Annotate button in Preview, located next to the Select button on the top.
Now, you should notice a toolbar appear on the bottom on Preview.
Use this Annotation toolbar to highlight text, add circles or squares around important text, add hyperlinks, add text, or add colorful arrows.
Once you’re done making any changes to the file, make sure to save it.
The seed notes reportedly include a caution that there is a known issue with optical drives: that they may not be recognized and the eject key may not eject the media, and that DVD Player may hang. As a result, not all developers may choose to install this build.
Note: Mac OS X 10.6.1 was released September 10.
Snow Leopard’s Terminal has a new very useful feature “SPLIT” / “COLLAPSE” as in many text editors. Check out the split/collapse window buttons here above the scroll bar:
Click the top “split” button or press Command+D shortcut and now you’ve got your window split into two usable panes like so: To collapse the window press Command+Shift+D
ALso, you can do multiple splits. Aside from general speed increase I think split pane in Terminal is my new favorite feature.
Quick Look has a hidden feature that is not enabled by default, and can only be enabled through Terminal. Essentially, when ‘X-Ray mode’ is turned on, Quick Looking a folder will show, in a way, the contents of the folder.
Instead of just seeing the regular folder icon in Quick Look, the folder icon will be semi-transparent, with previews of the folder’s contents visible in the Quick Look window, as seen in the image at right. What’s more, the preview images will rotate automatically, moving through each item in the folder (click the image to see a movie of the animation).
To turn this on, quit the Finder (using Activity Monitor, Terminal, etc.), then open Terminal and enter this command:
Relaunch the Finder, and enjoy the new folder X-Ray mode in Quick Look. If you ever want to disable it again, quit the Finder, then repeat the above Terminal command, but change the 1 to a 0.
If you want to quickly change your sound input device, simply Option-Click the Sound menu at the top of your screen to enable an alternate menu pulldown list of input devices.
This trick is much faster than launching into the System Preferences and adjusting from microphone to line-in audio source. As far as I know this is new to Mac OS X 10.6 Snow Leopard.
Users who want to run the new 64-bit kernel on late-model Macs (pretty much anything released after early 2008) can do so by booting with the 6 and 4 keys held down. If you’re wondering whether your Mac has a 64-bit EFI firmware, you can type this command in Terminal:
# ioreg -l -p IODeviceTree | grep firmware-abi
The response will identify the machine as either having 32-bit or 64-bit EFI.
To boot 64-bit kernel every time you boot machine:
1. Print nvram settings
# sudo nvram -p
2. Set boot-args to use 64 bit kernel
# sudo nvram boot-args="arch=x86_64"
Don’t forget to add in your existing boot-args to the command above. Using nvram means you don’t need to have to remember to hold down 6 or 4 during booting each time. To go back to the 32 bit kernel, just set the boot-args using nvram without the arch=x86_64 option.
Apple released the first dot update of Snow Leopard on Thursday. The 75.1MB update fixes a few minor issues mostly related to the functionality of Mac OS. Here is a complete list of included fixes.
Improves compatibility with some Sierra Wireless 3G modems
Addresses an issue in which some printer compatibility drivers might not appear properly in the Add Printer browser
Addresses an issue that might cause DVD playback to stop unexpectedly
Addresses an issue that might make it difficult to remove an item from the Dock
Resolves an issue in which the Command-Option-T keyboard shortcut would sometimes bring up the special characters menu in applications such as Mail and TextEdit
Addresses instances in which auto account setup in Mail might not work
Resolves issues when sending mail with certain SMTP servers
Addresses an issue in which Motion 4 could become unresponsive
Includes an update to Adobe Flash Player plug-in version 10.0.32.18
This update addresses an important security issue, the update to Flash Player 10.0.32.18. Snow Leopard had been recently criticized for shipping with and out-of-date and vulnerable version on Flash Player.
The Hackintosh community just keeps on growing, and this particular guide is sure to roil some feathers. Lifehacker has an excellent walkthrough from start to finish on how to build a screaming desktop Mac Hackintosh that runs Snow Leopard, for under $900! Assuming you order the same parts, the incredible specs of the machine you end up with are as follows:
8GB of RAM
3.1 GHz
8GB of RAM
1TB Hard Disk
GeForce 9800 GTX+ 512mb Graphics Card
DVD Burner
Mac OS X 10.6 Snow Leopard
LifeHacker sums up the specs of this build versus something comparable at the Apple Store as follows: “In short, my $900 “Hack Pro” sports better hardware than any Mac that Apple sells short of the $3,300 8-Core Mac Pro” – Wow! Now obviously building this machine takes some tech savviness, but if you want a powerful Mac and don’t have $3000 to spend, the Hackintosh build is a very compelling weekend project.
I actually have my own Hackintosh but it’s a Netbook and I simply love it. Several of my techy friends also have Hackintosh’s that are both Netbooks and Desktops and they are enthralled with the machines as well – the primary reason for creating a Hackintosh for them? Cost savings. The interesting thing is we are all ‘real’ Mac owners as well, but instead of buying a brand new machine we each opted to go the Hackintosh route.
Check out the Lifehacker article for the walkthrough of building a desktop Mac, or follow some of our other Hackintosh links:
To collapse the window press 
If you want to quickly change your sound input device, simply Option-Click the Sound menu at the top of your screen to enable an alternate menu pulldown list of input devices.
The Hackintosh community just keeps on growing, and this particular guide is sure to roil some feathers. 
Recent Comments